rk-1B23.tmp.txt

Document joint : FHssvilbyKF_rk-1B23.tmp.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.4.4.0 (x64) [Aug 16 2016] (Gratuit) par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 10 (10.0.10586) 64 bits version
Démarré en : Mode normal
Utilisateur : yzx [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 08/18/2016 20:01:07

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 12 ¤¤¤
[Suspicious.Path] (X64) HKEY_CLASSES_ROOT\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_CLASSES_ROOT\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_CLASSES_ROOT\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_CLASSES_ROOT\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending | (default) : {056D528D-CE28-4194-9BA3-BA2E9197FF8C} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) [x] -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced | (default) : {05B38830-F4E9-4329-978B-1DD28605D202} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) [x] -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing | (default) : {0596C850-7BDD-4C9D-AFDF-873BE6890637} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) [x] -> Trouvé(e)
[Suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending | (default) : {056D528D-CE28-4194-9BA3-BA2E9197FF8C} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) [x] -> Trouvé(e)
[Suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced | (default) : {05B38830-F4E9-4329-978B-1DD28605D202} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) [x] -> Trouvé(e)
[Suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing | (default) : {0596C850-7BDD-4C9D-AFDF-873BE6890637} (C:\Users\yzx\AppData\Local\MEGAsync\ShellExtX64.dll) [x] -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2485989737-1439140901-4248053528-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://acer13.msn.com/?pc=ACJB -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2485989737-1439140901-4248053528-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://acer13.msn.com/?pc=ACJB -> Trouvé(e)

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD10JPVX-22JC3T0 +++++
--- User ---
[MBR] 9fc44c4ed4eb885e5665f0358ac06fc0
[BSP] cea58027d933ec0ee692175b13223e17 : Empty|VT.Unknown MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 2048 | Size: 600 MB
1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 1230848 | Size: 300 MB
2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1845248 | Size: 128 MB
3 - Basic data partition | Offset (sectors): 2107392 | Size: 464658 MB
4 - Basic data partition | Offset (sectors): 953726976 | Size: 464658 MB
5 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 1905346560 | Size: 23524 MB
User = LL1 ... OK
User = LL2 ... OK

Signaler le contenu de ce document